0f994cdf0fa9ad567e71eba36e7f7263_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f994cdf0fa9ad567e71eba36e7f7263_JaffaCakes118
Size

152KB
MD5

0f994cdf0fa9ad567e71eba36e7f7263
SHA1

5c8757909080052a84fd907a783055aa2e71876d
SHA256

d8d3db489105c4ab88ebb791a82a1bdbb00f15afc4c7adba81c30a7e7a4f8721
SHA512

5dc79bd8e80cd2fb1b49d980b390e42372eb7c05787382b70b62b5be48ce083aa5076e6bc5865c630070df1a4c71d57b4ac96fd306c55003d8a32d00523d963a
SSDEEP

3072:eEkNGBQCmSNrF55n8h0K/+M29kzbe3A/Q1Ovp04t9p6:QNGBQDSl35no0y+4e3A/Q/Y9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f994cdf0fa9ad567e71eba36e7f7263_JaffaCakes118

Files

0f994cdf0fa9ad567e71eba36e7f7263_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dfa1663501859a5023bd05b03d22d396

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenu
GetFocus
CreateIcon
AppendMenuW
DialogBoxParamW
EndDialog
CalcMenuBar
GetDC
IsWindow
InsertMenuA
BlockInput
CopyRect
IsMenu
DrawTextW
GetWindowTextLengthA
DrawTextA
CloseWindow
AlignRects
AlignRects
LoadCursorA
DrawTextA
DrawTextW
DrawIcon
IsWindow
DialogBoxParamA
AppendMenuW
CopyIcon
CreateIcon
CopyRect
GetCursor
CalcMenuBar
BlockInput
CopyImage
GetMenu
GetDlgItem
InsertMenuA
LoadMenuA
GetDC
EndDialog
GetWindowTextLengthA
CreateIcon
GetMenu
IsMenu
InsertMenuA
DrawIcon
CloseWindow
IsWindow
DialogBoxParamA
CopyIcon
GetWindowTextA
BlockInput
CopyImage
AlignRects
AppendMenuW
AppendMenuA
CopyImage
BlockInput
CreateIcon
DrawTextA
AppendMenuA
BeginPaint
GetWindowTextLengthA
CopyIcon
GetFocus
IsWindow
GetWindowTextA
LoadMenuA
CopyRect
AppendMenuW
InsertMenuA
DrawIconEx
DialogBoxParamW
CalcMenuBar

kernel32

CreateDirectoryA
FreeResource
GetLastError
OpenFileMappingA
ExitProcess
OpenFile
ExitThread
DeleteFileW
GetCPInfo
AddAtomW
GetFileType
CopyFileA
GetFileTime
FlushFileBuffers
DeleteFileA
GetCommandLineA
GetFileType
FindAtomW
GetStdHandle
DeleteAtom
ExitThread
GlobalFree
FlushFileBuffers
DeleteFileA
GetLastError
ExitProcess
ReadFile
FindAtomA
OpenFile
GetCPInfo
DeleteFileA
FindClose
GetFileType
GlobalFree
FatalExit
GetFileTime
ExitProcess
DeleteAtom
WriteFile
CopyFileA
FlushFileBuffers
OpenFileMappingA
GetLocalTime
DeleteFileW
FreeResource

advapi32

RegEnumValueA
RegDeleteValueW
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyA
RegReplaceKeyW
RegReplaceKeyA
RegCreateKeyExW
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyA
RegQueryValueExA
RegDeleteKeyA

Sections

.itext
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 109KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfa1663501859a5023bd05b03d22d396

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.itext Size: 29KB - Virtual size: 28KB

.edata Size: 9KB - Virtual size: 9KB

.init Size: 109KB - Virtual size: 444KB

.idata Size: 4KB - Virtual size: 3KB

.itext
Size: 29KB - Virtual size: 28KB

.edata
Size: 9KB - Virtual size: 9KB

.init
Size: 109KB - Virtual size: 444KB

.idata
Size: 4KB - Virtual size: 3KB